System and method to use a cloud-based platform supported by an API to authenticate remote users and to provide PKI- and PMI- based distributed locking of content and distributed unlocking of protected content
First Claim
1. A method for authenticating a computer user in a computer network, the computer network including an entity computer, a platform server, a user computer and an application programming interface (API) for communication between the entity computer and the platform server, the method comprising:
- sending an invitation message from the entity computer to the API for authenticating an identity of a user of the user computer, the invitation message including a first public key of the entity computer and a secret question with an answer;
receiving and translating by the API the invitation message and sending the translated invitation message including the first public key to the platform server;
preparing an invitation response by the platform server and sending the invitation response to the API;
receiving and translating the invitation response by the API and sending the translated invitation response to the entity computer;
preparing a first message including a link and a unique code by the entity computer and sending the first message to the user computer;
receiving the first message, registering with the platform server utilizing the link and the unique code, and generating a second public key, by the user computer;
sending the secret question to the user computer by the platform server;
receiving a correct answer to the secret from the user computer;
receiving the second public key by the platform server;
authenticating the identity of the user of the user computer based on the received correct answer; and
receiving the first public key from the platform server, by the user computer, after said authentication of the identity of user of the user computer;
preparing a second message by the platform server including the second public key and transmitting the second message to the entity computer via the API; and
establishing a secure communication line between the entity computer and the user computer, utilizing the first public key and the second public key, whereinsaid secure communication line is authenticated using a certificate received from a certificate authority.
1 Assignment
0 Petitions
Accused Products
Abstract
System and method for authenticating a computer user includes: sending an invitation message from an entity computer to an API for authenticating a user of a user computer; receiving and translating by the API the invitation message and sending the translated invitation message including the first public key to the platform server; sending an invitation response to the API to be translated and sending the translated invitation response to the entity computer; preparing a first message including a link and a unique code by the entity computer and sending the first message to the user computer; registering with the platform server utilizing the link and the unique code, and generating a second public key, by the user computer; receiving a correct answer to the secret from the user computer; receiving the second public key by the platform server; and authenticating the user based on the received correct answer.
-
Citations
10 Claims
-
1. A method for authenticating a computer user in a computer network, the computer network including an entity computer, a platform server, a user computer and an application programming interface (API) for communication between the entity computer and the platform server, the method comprising:
-
sending an invitation message from the entity computer to the API for authenticating an identity of a user of the user computer, the invitation message including a first public key of the entity computer and a secret question with an answer; receiving and translating by the API the invitation message and sending the translated invitation message including the first public key to the platform server; preparing an invitation response by the platform server and sending the invitation response to the API; receiving and translating the invitation response by the API and sending the translated invitation response to the entity computer; preparing a first message including a link and a unique code by the entity computer and sending the first message to the user computer; receiving the first message, registering with the platform server utilizing the link and the unique code, and generating a second public key, by the user computer; sending the secret question to the user computer by the platform server; receiving a correct answer to the secret from the user computer; receiving the second public key by the platform server; authenticating the identity of the user of the user computer based on the received correct answer; and receiving the first public key from the platform server, by the user computer, after said authentication of the identity of user of the user computer; preparing a second message by the platform server including the second public key and transmitting the second message to the entity computer via the API; and establishing a secure communication line between the entity computer and the user computer, utilizing the first public key and the second public key, wherein said secure communication line is authenticated using a certificate received from a certificate authority. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A system for authenticating a computer user in a computer network comprising:
-
a control computer coupled to the computer network for executing an application programming interface (API); a user computer coupled to the computer network; an entity computer coupled to the computer network for sending an invitation message to the API for authenticating an identity of a user of the user computer, the invitation message including a first public key of the entity computer and a secret question with an answer; and a platform server coupled to the computer network for providing security or public key infrastructure functions, wherein the API receives and translates the invitation message and sends the translated invitation message including the first public key to the platform server, wherein the platform server prepares an invitation response and sends the invitation response to the API, wherein the API receives and translates the invitation response and sends the translated invitation response to the entity computer, wherein the entity computer prepares a first message including a link and a unique code by and sends the first message to the user computer, wherein the user computer receives the first message, registers with the platform server utilizing the link and the unique code, and generates a second public key, and wherein the platform server sends the secret question to the user computer and receives a correct answer to the secret and the second public key from the user computer, and authenticates the identity of the user of the user computer based on the received correct answer, wherein the user computer receives the first public key from the platform server, after said authentication of the identity of user of the user computer, wherein the platform server prepares a second message including the second public key and transmits the second message to the entity computer via the API and establishes a secure communication line between the entity computer and the user computer, utilizing the first public key and the second public key, and wherein said secure communication line is authenticated using a certificate received from a certificate authority. - View Dependent Claims (7, 8, 9, 10)
-
Specification